CVE-2007-0176 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-0176
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-0176

Description: Cross-site scripting (XSS) vulnerability in search/advanced_search.php in GForge 4.5.11 allows remote attackers to inject arbitrary web script or HTML via the words parameter.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/31346 ST 1017482 SREASON http://securityreason.com/securityalert/2133 SAID Secunia Advisory: SA28598 Secunia Advisory: SA23675 OSVDB 31248 MISC http://www.eazel.es/advisory006-gforge-cross-site-scripting-vulnerability.html DEBIAN http://www.debian.org/security/2008/dsa-1475 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/456296/100/0/threaded BID 21946

Return to the previous page.